NuytsTech Security

CVE-2007-0995

by ·

Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8 ignores trailing invalid HTML characters in attribute names, which allows remote attackers to bypass content filters that use regular expressions.

Date published : 2007-02-26

http://www.securityfocus.com/bid/22694

http://www.securityfocus.com/archive/1/461336/100/0/threaded

Tags: